PT-2025-29962 · Sophos · Sophos Intercept X For Windows+1
Sina Kheirkhah
·
Published
2025-07-17
·
Updated
2025-07-21
·
CVE-2025-7433
CVSS v3.1
8.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Sophos Intercept X for Windows with Central Device Encryption versions 2025.1 and older
Description
A local privilege escalation vulnerability allows arbitrary code execution.
Recommendations
Update Sophos Intercept X for Windows with Central Device Encryption to a version later than 2025.1.
Fix
LPE
RCE
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sophos Intercept X For Windows
Sophos Intercept X For Windows With Central Device Encryption